$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D0FBA90459B511EDBB27FC25C4F9AE02.roa File: D0FBA90459B511EDBB27FC25C4F9AE02.roa (raw, json) Hash identifier: tRXKxO93J23hxdHI6AC/SsrHWo3MLmb1RiGMaGN15MY= Subject key identifier: 07:B3:72:CD:49:23:AC:72:81:84:14:4A:7F:AC:5D:42:2F:61:EE:56 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: 7091 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D0FBA90459B511EDBB27FC25C4F9AE02.roa Signing time: Wed 10 May 2023 16:44:11 +0000 ROA not before: Wed 10 May 2023 16:44:11 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 149596 IP address blocks: 103.187.246.0/23 maxlen: 24 2400:8660::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 15:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28817 (0x7091) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 10 16:44:11 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=645bc9db-6c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:bf:90:87:78:5f:99:32:18:1e:e0:eb:c2:b4: 12:1d:d4:f2:11:8a:45:5d:47:10:d3:8a:c4:6b:ba: 01:e9:0f:e6:82:2b:5e:fa:2d:97:d5:55:44:2f:25: d1:9b:5a:ad:e2:4f:16:ab:25:a2:b3:50:5f:b1:d6: 09:aa:a6:46:7b:20:f5:00:09:85:7c:3d:33:b5:5c: ed:bb:15:f0:82:fb:7f:2a:22:2f:3b:77:1e:b1:27: ff:b1:fe:56:9c:b0:90:52:cf:a9:c5:1e:cf:15:8d: e4:7e:37:ee:76:a9:0f:38:38:fc:f7:10:e7:63:c7: 7a:e1:3d:c0:58:9c:c9:4a:b4:26:b7:d3:8c:2c:98: 0a:6f:f9:c1:fa:77:da:5e:39:ef:28:ca:0f:b4:3d: 23:00:d4:a0:a4:70:38:de:ff:3e:5c:d7:70:29:62: 51:c7:3c:09:f5:5a:85:13:6b:9c:a6:ed:8f:91:df: 7b:e3:89:0f:23:50:4c:d8:48:53:7d:f9:68:e3:85: d5:76:1a:a3:93:ef:41:74:8c:90:f4:bb:45:d8:ec: 1c:43:ef:2e:51:1d:7c:e8:ac:b3:34:de:af:8a:ce: b2:84:e6:c4:7b:ac:ff:fb:15:d0:9d:ec:af:97:c8: a0:14:c1:17:0f:03:51:6c:2d:94:30:47:a5:84:ce: ba:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:B3:72:CD:49:23:AC:72:81:84:14:4A:7F:AC:5D:42:2F:61:EE:56 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D0FBA90459B511EDBB27FC25C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.187.246.0/23 IPv6: 2400:8660::/32 Signature Algorithm: sha256WithRSAEncryption 8a:41:9a:55:12:00:1e:2a:78:0d:d8:6d:77:c9:19:56:16:07: 1d:10:0b:07:68:65:19:d0:75:bf:0c:1c:27:7d:2e:52:bd:af: a6:53:10:20:b2:b6:54:24:c7:c1:9a:38:69:b2:14:a9:7b:87: 5c:3b:08:8f:c8:3a:36:e6:a2:4f:7a:1d:e7:d9:04:6b:66:82: 62:ee:0e:0d:27:9d:96:96:84:51:92:64:a5:8c:f3:30:bd:36: c6:4e:c9:c8:06:6f:d1:66:b6:5d:ae:4b:b3:49:b5:28:9b:71: f0:02:26:1d:8d:5e:51:e5:46:ef:54:ec:d2:71:b7:67:3a:bc: 18:bd:be:4a:89:28:10:5d:c8:15:7d:92:a2:ac:3c:f5:75:a7: 60:96:4e:20:f3:4e:cd:b9:61:26:c9:2d:1b:4f:0b:8c:8f:b7: 6f:36:ac:2c:80:b3:e7:fd:29:05:28:f0:84:cc:36:c8:42:c5: 20:20:2d:68:65:61:65:a5:2f:9e:00:4f:a3:06:7b:4e:ae:c9: 96:67:90:bb:ae:58:fd:de:63:af:d1:08:49:3b:b2:70:bb:94: db:9b:89:3e:28:98:4e:b5:1a:09:d1:60:32:8c:52:10:96:d1: e7:1c:5d:e9:a0:24:21:4a:74:8e:4d:fd:5e:32:d4:2a:b5:1f: 46:b2:f1:45 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICcJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKDI5NkVEQjY0RjNBRjZFOUQ5ODA5MzJFODE2Rjk1OTgz RTNBQkM4MjMwHhcNMjMwNTEwMTY0NDExWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDViYzlkYi02YzYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAur+Qh3hfmTIYHuDrwrQSHdTyEYpFXUcQ04rEa7oB6Q/mgite+i2X1VVELyXR m1qt4k8WqyWis1BfsdYJqqZGeyD1AAmFfD0ztVztuxXwgvt/KiIvO3cesSf/sf5W nLCQUs+pxR7PFY3kfjfudqkPODj89xDnY8d64T3AWJzJSrQmt9OMLJgKb/nB+nfa XjnvKMoPtD0jANSgpHA43v8+XNdwKWJRxzwJ9VqFE2ucpu2Pkd9744kPI1BM2EhT fflo44XVdhqjk+9BdIyQ9LtF2OwcQ+8uUR186KyzNN6vis6yhObEe6z/+xXQneyv l8igFMEXDwNRbC2UMEelhM66DQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFAezcs1J I6xygYQUSn+sXUIvYe5WMB8GA1UdIwQYMBaAFClu22Tzr26dmAky6Bb5WYPjq8gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8yQTQzRTMwQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tXN2JaUE92YnAyWUNUTG9GdmxaZy1PcnlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMkE0M0UzMEM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvRDBGQkE5MDQ1 OUI1MTFFREJCMjdGQzI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnu/YwDQQCAAIwBwMFACQAhmAwDQYJKoZIhvcNAQELBQAD ggEBAIpBmlUSAB4qeA3YbXfJGVYWBx0QCwdoZRnQdb8MHCd9LlK9r6ZTECCytlQk x8GaOGmyFKl7h1w7CI/IOjbmok96HefZBGtmgmLuDg0nnZaWhFGSZKWM8zC9NsZO ycgGb9Fmtl2uS7NJtSibcfACJh2NXlHlRu9U7NJxt2c6vBi9vkqJKBBdyBV9kqKs PPV1p2CWTiDzTs25YSbJLRtPC4yPt282rCyAs+f9KQUo8ITMNshCxSAgLWhlYWWl L54AT6MGe06uyZZnkLuuWP3eY6/RCEk7snC7lNubiT4omE61GgnRYDKMUhCW0ecc XemgJCFKdI5N/V4y1Cq1H0ay8UU= -----END CERTIFICATE-----Generated at Sun Apr 28 15:51:37 2024 by rpki-client on console-fra.rpki-client.org